108 episodes

A podcast for information security defenders (blue team) on best practices, tools, and implementation for enterprise security.

Blue Security Andy Jaw & Adam Brewer

    • Technology

A podcast for information security defenders (blue team) on best practices, tools, and implementation for enterprise security.

    Active Directory Security Tips

    Active Directory Security Tips

    This week, Adam and Andy talk about some tips on securing Active Directory. This was inspired by a session led by Trimarc Security at The Experts Conference.

    -------------------------------------------

    Youtube Video Link: https://youtu.be/7HQZQh-UzmQ

    -------------------------------------------

    Documentation:

    https://www.trimarcsecurity.com/

    https://www.quest.com/the-experts-conference/

    https://www.hub.trimarcsecurity.com/post/ten-ways-to-improve-ad-security-quickly

    -------------------------------------------

    Contact Us:

    Website: http://bluesecuritypod.com

    Twitter: https://twitter.com/bluesecuritypod

    Linkedin: https://www.linkedin.com/company/bluesecpod

    Youtube: https://www.youtube.com/c/BlueSecurityPodcast

    Instagram: https://www.instagram.com/bluesecuritypodcast/

    Facebook: https://www.facebook.com/bluesecpod

    Twitch: https://www.twitch.tv/bluesecuritypod

    -------------------------------------------

    Andy Jaw

    Twitter: https://twitter.com/ajawzero

    LinkedIn: https://www.linkedin.com/in/andyjaw/

    Email: andy@bluesecuritypod.com

    -------------------------------------------

    Adam Brewer

    Twitter: https://twitter.com/ajbrewer

    LinkedIn: https://www.linkedin.com/in/adamjbrewer/

    Email: adam@bluesecuritypod.com


    ---

    Send in a voice message: https://anchor.fm/blue-security-podcast/message

    • 28 min
    Kerberoasted

    Kerberoasted

    This week, Adam and Andy talk about kerberoasting: how it works and how to defend against it. Listen in on this unique attack technique!

    -------------------------------------------

    Youtube Video Link: https://youtu.be/sr75jgscnkQ

    -------------------------------------------

    Documentation:

    https://www.linkedin.com/posts/heathadams_i-got-domain-admin-on-an-internal-pentest-activity-6976047836693966848-e3AM

    https://twitter.com/_wald0/status/1562871258190348289?s=20&t=xcJOw353X-xDvHB52BKxiA

    -------------------------------------------

    Contact Us:

    Website: http://bluesecuritypod.com

    Twitter: https://twitter.com/bluesecuritypod

    Linkedin: https://www.linkedin.com/company/bluesecpod

    Youtube: https://www.youtube.com/c/BlueSecurityPodcast

    Instagram: https://www.instagram.com/bluesecuritypodcast/

    Facebook: https://www.facebook.com/bluesecpod

    Twitch: https://www.twitch.tv/bluesecuritypod

    -------------------------------------------

    Andy Jaw

    Twitter: https://twitter.com/ajawzero

    LinkedIn: https://www.linkedin.com/in/andyjaw/

    Email: andy@bluesecuritypod.com

    -------------------------------------------

    Adam Brewer

    Twitter: https://twitter.com/ajbrewer

    LinkedIn: https://www.linkedin.com/in/adamjbrewer/

    Email: adam@bluesecuritypod.com


    ---

    Send in a voice message: https://anchor.fm/blue-security-podcast/message

    • 18 min
    Microsoft Teams, Patreon, and Uber

    Microsoft Teams, Patreon, and Uber

    This week, Adam and Andy talk about Microsoft Teams and the post-exploit technique that was discovered by Vetra's Project Team and the decision of Patreon to lay off their entire internal information security team. The also talk about Uber's on-going cybersecurity incident including some initial reports of how it happened as well as mitigations to prevent this type of attack in the future.

    -------------------------------------------

    Youtube Video Link: https://youtu.be/FWnEma4hOWQ

    -------------------------------------------

    Documentation:

    https://www.vectra.ai/blogpost/undermining-microsoft-teams-security-by-mining-tokens

    https://techcrunch.com/2022/09/09/patreon-security-layoffs/

    https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-passwordless

    https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-faqs

    -------------------------------------------

    Contact Us:

    Website: http://bluesecuritypod.com

    Twitter: https://twitter.com/bluesecuritypod

    Linkedin: https://www.linkedin.com/company/bluesecpod

    Youtube: https://www.youtube.com/c/BlueSecurityPodcast

    Instagram: https://www.instagram.com/bluesecuritypodcast/

    Facebook: https://www.facebook.com/bluesecpod

    Twitch: https://www.twitch.tv/bluesecuritypod

    -------------------------------------------

    Andy Jaw

    Twitter: https://twitter.com/ajawzero

    LinkedIn: https://www.linkedin.com/in/andyjaw/

    Email: andy@bluesecuritypod.com

    -------------------------------------------

    Adam Brewer

    Twitter: https://twitter.com/ajbrewer

    LinkedIn: https://www.linkedin.com/in/adamjbrewer/

    Email: adam@bluesecuritypod.com


    ---

    Send in a voice message: https://anchor.fm/blue-security-podcast/message

    • 29 min
    Cloudflare and Kiwi Farms

    Cloudflare and Kiwi Farms

    This week, Adam and Andy breakdown what led to Cloudflare dropping Kiwi Farms as a customer, why the media and Twitter were up-in-arms about the whole incident, and their thoughts about the decision.

    -------------------------------------------

    Youtube Video Link: https://youtu.be/NrNe_n95Tfk

    -------------------------------------------

    Documentation:

    https://blog.cloudflare.com/cloudflares-abuse-policies-and-approach/ 

    https://blog.cloudflare.com/kiwifarms-blocked/ 

    https://rasbora.dev/blog/I-ran-the-worlds-largest-ddos-for-hire-empire-and-cloudflare-helped

    -------------------------------------------

    Contact Us:

    Website: http://bluesecuritypod.com

    Twitter: https://twitter.com/bluesecuritypod

    Linkedin: https://www.linkedin.com/company/bluesecpod

    Youtube: https://www.youtube.com/c/BlueSecurityPodcast

    Instagram: https://www.instagram.com/bluesecuritypodcast/

    Facebook: https://www.facebook.com/bluesecpod

    Twitch: https://www.twitch.tv/bluesecuritypod

    -------------------------------------------

    Andy Jaw

    Twitter: https://twitter.com/ajawzero

    LinkedIn: https://www.linkedin.com/in/andyjaw/

    Email: andy@bluesecuritypod.com

    -------------------------------------------

    Adam Brewer

    Twitter: https://twitter.com/ajbrewer

    LinkedIn: https://www.linkedin.com/in/adamjbrewer/

    Email: adam@bluesecuritypod.com


    ---

    Send in a voice message: https://anchor.fm/blue-security-podcast/message

    • 33 min
    Cloud Security 101

    Cloud Security 101

    This week, Adam and Andy talk about cloud security. If you're looking to learn about cloud security concepts, this is the show for you. They talk about basic and advanced security as well as risk assessment and other things you should consider when designing and architecting your security in the cloud.

    -------------------------------------------

    Youtube Video Link: https://youtu.be/1sc1R8iL3wc

    -------------------------------------------

    Contact Us:

    Website: http://bluesecuritypod.com

    Twitter: https://twitter.com/bluesecuritypod

    Linkedin: https://www.linkedin.com/company/bluesecpod

    Youtube: https://www.youtube.com/c/BlueSecurityPodcast

    Instagram: https://www.instagram.com/bluesecuritypodcast/

    Facebook: https://www.facebook.com/bluesecpod

    Twitch: https://www.twitch.tv/bluesecuritypod

    -------------------------------------------

    Andy Jaw

    Twitter: https://twitter.com/ajawzero

    LinkedIn: https://www.linkedin.com/in/andyjaw/

    Email: andy@bluesecuritypod.com

    -------------------------------------------

    Adam Brewer

    Twitter: https://twitter.com/ajbrewer

    LinkedIn: https://www.linkedin.com/in/adamjbrewer/

    Email: adam@bluesecuritypod.com


    ---

    Send in a voice message: https://anchor.fm/blue-security-podcast/message

    • 43 min
    Beyond E5, Rebranding, Public Previews in Microsoft Security

    Beyond E5, Rebranding, Public Previews in Microsoft Security

    This week, Adam and Andy pull together all the new product launches and rebranding for Microsoft Security over the last couple of months. Listen in to learn about Microsoft Entra, Defender Threat Intel, App Governance, and Threat Experts.

    -------------------------------------------

    Youtube Video Link: https://youtu.be/PSm97tY4q1E

    -------------------------------------------

    Documentation:

    https://www.microsoft.com/security/blog/2022/05/31/secure-access-for-a-connected-worldmeet-microsoft-entra/

    https://docs.microsoft.com/en-us/azure/active-directory/cloud-infrastructure-entitlement-management/overview

    https://docs.microsoft.com/en-us/azure/active-directory/verifiable-credentials/decentralized-identifier-overview

    https://docs.microsoft.com/en-us/defender/threat-intelligence/what-is-microsoft-defender-threat-intelligence-defender-ti

    https://docs.microsoft.com/en-us/azure/external-attack-surface-management/

    https://www.microsoft.com/en-us/microsoft-365/blog/2022/04/05/ease-the-burden-of-managing-and-protecting-endpoints-with-microsoft-advanced-solutions/

    https://docs.microsoft.com/en-us/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management?view=o365-worldwide

    https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-threat-experts?view=o365-worldwide

    https://docs.microsoft.com/en-us/microsoft-365/security/defender/defender-experts-for-hunting?view=o365-worldwide

    -------------------------------------------

    Contact Us:

    Website: http://bluesecuritypod.com

    Twitter: https://twitter.com/bluesecuritypod

    Linkedin: https://www.linkedin.com/company/bluesecpod

    Youtube: https://www.youtube.com/c/BlueSecurityPodcast

    Instagram: https://www.instagram.com/bluesecuritypodcast/

    Facebook: https://www.facebook.com/bluesecpod

    Twitch: https://www.twitch.tv/bluesecuritypod

    -------------------------------------------

    Andy Jaw

    Twitter: https://twitter.com/ajawzero

    LinkedIn: https://www.linkedin.com/in/andyjaw/

    Email: andy@bluesecuritypod.com

    -------------------------------------------

    Adam Brewer

    Twitter: https://twitter.com/ajbrewer

    LinkedIn: https://www.linkedin.com/in/adamjbrewer/

    Email: adam@bluesecuritypod.com


    ---

    Send in a voice message: https://anchor.fm/blue-security-podcast/message

    • 29 min

You Might Also Like

Johannes B. Ullrich
CyberWire, Inc.
Cybereason
TWiT
VICE
Jack Rhysider